Data Breach
Dashlane Breach Exposes Critical 2FA Rate-Limiting Failure as Attackers Exfiltrate Encrypted Vaults
Brute-force campaign bypassed two-factor authentication on fewer than 20 accounts, revealing fundamental vulnerabilities in password manager authentication infrastructure at scale.
CISA Exposed AWS Keys and Plaintext Passwords on GitHub for Six Months
America's cybersecurity agency left 844 MB of sensitive credentials in a public repository while its workforce shrank by a third and leadership remained vacant.
CISA contractor exposed AWS GovCloud root keys on public GitHub for six months
A Nightwing employee leaked administrative credentials to federal cybersecurity infrastructure, raising questions about secrets management practices as the agency operates at a third of its normal staffing.
AI-Powered No-Code Platforms Are Mass-Producing Data Breaches
Thousands of applications built with Lovable, Replit, and similar services ship with exposed databases, hardcoded credentials, and missing authentication—creating a systemic enterprise security crisis.